Hello,
I'm using the CRS 2.2.7 with mod security 2.7.2 and apache 2.2.14 on Linux
Ubuntu. I seem to have troubles with the modsecurity crs 11 slow dos
protection.conf from the experimental ruleset. In fact, the reqtimeout module
is working fine and fires 408 errors after the specified number of seconds when
I don't provide the HTTP header fast enough (I tested that by simply performing
manual telnet sessions on the port 80 of my server). But these 408 errors seem
not to be intercepted by mod security at all. Indeed, when I enable the
maximum debug logs (level 9), nothing is appended in the debug log upon 408
firing: no trace of any rule being checked in that particular case.
So it seems that the reqtimeout module returns in a way that prevents mod
security from being activated.
Did any of you encounter similar problems?
Thanks for your help
Olivier Demin
###########################################<br>GENERALI BELGIUM NV-SA -
Verzekeringen-Assurances<br>Louizalaan 149 Avenue Louise - Brussel 1050
Bruxelles<br>Ondernemingsnummer 0403.262.553 Numéro d'entreprise<br>RPR Brussel
- RPM Bruxelles<br>###########################################<br>This e-mail
and any files transmitted with it are confidential and<br>intended solely for
the use of the individual or entity to whom they <br>are addressed. If you have
received this e-mail in error please notify <br>the system manager.
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
